AMENDMENTS IN THE CLAIMS 



1. (Currently Amended) An apparatus for controlling access to a data security device 
within a data processing system, said apparatus comprising: 

a persistent enable flag for providing control access to said data security device, wherein 
said persistent enable flag is write-accessible only in response to a detected power-on reset of 
said data processing syste m, and wherein said persistent enable flag is read-only accessible to 
runtime program instructions ; and 

a pending state change flag write- accessible by runtime program instructions, for setting 
an intended next state of said persistent enable flag such that control access to said data security 
device is enabled only during a subsequent power-on reset of said data processing system. 

2. (Original) The apparatus of claim 1, further comprising: 
a switched power input to said data security device; 

a power-on reset detection latch for detecting the occurrence of power applied by said 
switched power input; and 

means for determining the state of said power-on reset detection latch. 

3. (Original) The apparatus of claim 2, further comprising means responsive to determining 
a set state of said power-on reset detection latch for: 

determining the state of said pending state change flag; and 

determining a next state of said persistent enable flag in accordance with the determined 
state of said pending state change flag. 

4. (Cancelled) 

5. (Original) The apparatus of claim 1, wherein said persistent enable flag and said pending 
state change flag are non-volatile storage devices. 

6. (Original) The apparatus of claim 1, wherein said data security device includes memory 
for receiving and storing data. 
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7. (Original) The apparatus of claim 1, wherein said data security device includes security 
portal functionality for controlling access to data stored within said data processing system. 

8. (Currently Amended) The apparatus of claim 1, wherein said data s e curity d e vic e 
includes control access to said data security device includes functionality for enabling or 
disabling ownership of said data security device, enabling or disabling enablement of said data 
security device, or enabling or disabling activation of said data security device. 

9. (Currently Amended) A method for providing secure controllability of a data security 
device within a data processing system, said method comprising: 

responsive to detecting a power-on reset cycle initiated within said data processing 

system: 

determining the state of a pending state change flag, wherein said pending state 
change flag is write- accessible by runtime program instructions for setting an intended 
next state of a persistent enable flag that enables or disables runtime control access to 
said data security device , wherein said persistent enable flag is read-only accessible to 
runtime program instructions ; and 

setting or resetting said persistent enable flag in accordance with the state of said 
pending state change flag. 

10. (Original) The method of claim 9, wherein said power-on reset steps are preceded by the 
step of setting said pending state change flag in accordance with user input during runtime 
operations of said data processing system. 

1 1 . (Original) The method of claim 9, further comprising, responsive to said pending state 
change flag being set, setting said persistent enable flag such that control access for said data 
security device is enabled following said power-on reset. 

12. (Original) The method of claim 9, further comprising, responsive to said pending state 
change flag being reset, resetting said persistent enable flag such that control access for said data 
security device is disabled following said power-on reset. 
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13. (Cancelled) 



14. (Original) The method of claim 9, wherein said power-on reset cycle includes execution 
of startup program instructions, said method further comprising: 

responsive to receiving user input within said data processing system, setting or resetting 
a state of said pending state change flag in accordance with said user input; and 

only in response to execution of said startup program instructions within said non-volatile 
programmable memory unit, updating said persistent enable flag to said intended state in 
accordance with the state of said pending state change flag. 

15. (Original) The method of claim 9, wherein said data security device includes memory for 
receiving and storing data. 

16. (Original) The method of claim 9, wherein said data security device includes security 
portal functionality for controlling access to data stored within said data processing system. 

17. (Currently Amended) The method of claim 9, wherein said data s e curity d e vic e includ e s 
control access to said data security device includes functionality for enabling or disabling 
ownership of said data security device, enabling or disabling enablement of said data security 
device, or enabling or disabling activation of said data security device. 

18. (Currently Amended) A compute r-readable medium having encoded thereon computer- 
executable instructions program product for providing secure controllability of a data security 
device within a data processing system, said program product computer-executable instructions 
adapted for executing a method comprising: 

program instructions responsive to detecting a power-on reset cycle initiated within said 
data processing system for: 

determining the state of a pending state change flag, wherein said pending state 
change flag is write- accessible by runtime program instructions for setting an intended 
next state of a persistent enable flag that enables or disables runtime control access to 
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said data security device , wherein said persistent enable flag is read-only accessible to 
runtime program instructions ; and 

setting or resetting said persistent enable flag in accordance with the state of said 
pending state change flag. 

19. (Currently Amended) The compute r-readable medium program product of claim 1 8, said 
method further comprising program instructions for setting said pending state change flag in 
accordance with user input during runtime operations of said data processing system. 

20. (Currently Amended) The compute r-readable medium program product of claim 18, said 
method further comprising, program instructions responsive to said pending state change flag 
being set, [[for]] setting said persistent enable flag such that control access for said data security 
device is enabled following said power-on reset. 

21 . (Currently Amended) The compute r-readable medium program product of claim 1 8, said 
method further comprising, program instructions responsive to said pending state change flag 
being reset, [[for]] resetting said persistent enable flag such that control access for said data 
security device is disabled following said power-on reset. 

22. (Cancelled) 

23. (Currently Amended) The compute r-readable medium program product of claim 18, 
wherein said power-on reset cycle includes execution of startup program instructions, said 
program product method further comprising: 

program instructions responsive to receiving user input within said data processing 
system, [[for]] setting or resetting a state of said pending state change flag in accordance with 
said user input; and 

program instructions responsive only to execution of said startup program instructions 
within said non- volatile programmable memory unit, [[for]] updating said persistent enable flag 
to said intended state in accordance with the state of said pending state change flag. 
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24. (Currently Amended) The compute r-readable medium program product of claim 18, 
wherein said data security device includes memory for receiving and storing data. 

25. (Currently Amended) The compute r-readable medium program product of claim 18, 
wherein said data security device includes security portal functionality for controlling access to 
data stored within said data processing system. 

26. (Currently Amended) The compute r-readable medium program product of claim 18, 
wherein said data security d e vic e includ e s control access to said data security device includes 
functionality for enabling or disabling ownership of said data security device, enabling or 
disabling enablement of said data security device, or enabling or disabling activation of said data 
security device. 
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